Sciweavers

POLICY
2007
Springer

Using SAML and XACML for Complex Resource Provisioning in Grid Based Applications

14 years 6 months ago
Using SAML and XACML for Complex Resource Provisioning in Grid Based Applications
This paper presents ongoing research and current results on the development of flexible access control infrastructure for complex resource provisioning (CRP) in Grid-based applications. The paper proposes a general CRP model and specifies major requirements to the Authorisation (AuthZ) service infrastructure to support multidomain CRP, focusing on two main issues – policy expression for complex resource models and AuthZ session support. The paper provides suggestions about using XACML and its profiles to describe access control policies to complex resources and briefly describes proposed XML based AuthZ ticket format to support extended AuthZ session context. Additionally, the paper discusses what specific functionality can be added to the gLite Java Authorisation Framework (gJAF), to handle dynamic security context including AuthZ session support. The paper is based on experiences gained from major Grid based and Grid oriented projects such as EGEE, Phosphorus and GigaPort Research...
Yuri Demchenko, Leon Gommans, Cees de Laat
Added 09 Jun 2010
Updated 09 Jun 2010
Type Conference
Year 2007
Where POLICY
Authors Yuri Demchenko, Leon Gommans, Cees de Laat
Comments (0)